CERTIFICATION GUIDE

CompTIA

Security+
CompTIA Security+ is a global certification that
validates the foundational cybersecurity skills
necessary to perform core security functions and
pursue an IT security career.
Open the Door to Your Cybersecurity Career with Security+
Exam #
• Launch a Successful Cybersecurity Career. Develop a core foundation of essential skills, paving
SY0-701
the way for a fulfilling career. More job roles use Security+ for baseline cybersecurity skills than
any other certification in the industry.
Release Date
• Assess On-the-Job Skills. Security+ is the most widely adopted ISO/ANSI-accredited early career
November 7, 2023
cybersecurity certification on the market with hands-on, performance-based questions on the certi-
fication exam. These practical questions assess your ability to effectively problem solve in real-life
Languages
situations and demonstrate your expertise to potential employers immediately.
English
• Embrace the Latest Trends. Understand and use the most recent advancements in cybersecurity
technology, terms, techniques, and tools. By acquiring early career skills in the latest trends such
CE Required?
as automation, zero trust, risk analysis, operational technology, and IoT, you will be well-equipped
Yes
to excel in the ever-evolving cybersecurity landscape.

Accreditation
Prove Your Skills with Security+
Accredited by ANSI to
CompTIA Security+ is the first early career cybersecurity certification a candidate should earn. show compliance with the
It equips cybersecurity professionals with the foundational security skills necessary to safeguard net- ISO 17024 Standard.
works, detect threats, and secure data through performance-based questions—helping them open the
door to a cybersecurity career and become a trusted defender of digital environments. The CompTIA
Security+ 701 exam verifies the candidate has the knowledge and skills required to:

• Assess the security posture of an enterprise environment and recommend and implement
appropriate security solutions.
• Monitor and secure hybrid environments, including cloud, mobile, Internet of Things (IoT),
and operational technology.
• Operate with an awareness of applicable regulations and policies, including principles of
governance, risk, and compliance.
• Identify, analyze, and respond to security events and incidents.
How does CompTIA Security+ compare to alternatives?

ISC2 Systems
EC-Council Certified
Security Certified GIAC Security ISC2 Certified in
Certification CompTIA Security+ Ethical Hacker
Practitioner Essentials (GSEC) Cybersecurity
(CEH)
(SSCP)
Performace-Based
Yes No Yes No No
Questions

Vendor Neutral Yes Yes Yes Yes Yes

Experience Level Early Career Early career Early career Early career Entry level

Baseline
Security Security
cybersecurity skills, Pen testing and Cybersecurity terms
Exam Focus administrator job administrator job
core cybersecurity ethical hacking and concepts
role role
knowledge
Online review
Full suite of online Self-paced online,
In-person training course and Self-paced online,
Training Products test prep tools, LOT, LOT, courseware,
and online answers database, LOT
books mobile toolkit
courseware

Jobs that use CompTIA Security+

• Security Specialist • Help Desk Analyst
• Security Administrator • Security Analyst
• Systems Administrator • Security Engineer

The great majority of candidates with IT certifications are more confident in their abilities
(92%). Furthermore, most have more confidence to explore new job opportunities (81%).

PearsonVUE
2023 Value of IT Certification Candidate Report; 2021 Value of IT Certification Employer Report
Technical skills covered in the certification and training

General Security Threats, Vulnerabilities Security

Concepts & Mitigations Architecture

12% 22% 18%

• Compare and contrast various types
of security controls.
• Summarize fundamental security
concepts.
• Explain the importance of change
management processes and the
impact to security.
• Explain the importance of using ap-
propriate cryptographic solutions.
• Compare and contrast common threat
actors and motivations.
• Explain common threat vectors and
attack surfaces.
• Explain various types of vulnerabilities.
• Given a scenario, analyze indicators of
malicious activity.
• Explain the purpose of mitigation
techniques used to secure the enterprise.
• Compare and contrast security
implications of different architecture
models.
• Given a scenario, apply security
principles to secure enterprise
infrastructure.
• Compare and contrast concepts
and strategies to protect data.
• Explain the importance of
resilience and recovery in security
architecture.

Security Security Program

Operations Management & Oversight

28% 20%
• Given a scenario, apply common security techniques to computing resources. • Summarize elements of effective
security governance.
• Explain the security implications of proper hardware, software, and data asset
management. • Explain elements of the risk
management process.
• Explain various activities associated with vulnerability management.
• Explain the processes associated
• Explain security alerting and monitoring concepts and tools. with third-party risk assessment
and management.
• Given a scenario, modify Enterprise capabilities to enhance security.
• Summarize elements of effective
• Given a scenario, implement and maintain identity and access management.
security compliance.
• Explain the importance of automation and orchestration related to secure operations.
• Explain types and purposes of
• Explain appropriate incident response activities. audits and assessments.

• Given a scenario, use data sources to support an investigation. • Given a scenario, implement
security awareness practices.

Nearly all IT managers (97%) recognize the value certified professionals bring to the
organization such as boosting productivity, helping to meet client requirements and
closing organizational gaps.
Skillsoft IT Skills & Salary Report 2022
 Organizations That Contributed to the Development of CompTIA Security+

• Blue Chip Talent • Fidelity Investments • Linford and Company LLC • SenseOn
• Brotherhood Mutual • Five9 • Lippert Components • SS&C Technologies
• Contentful • General Dynamics IT (GDIT) • Microsoft • U.S. Navy Center for
• Cyber Warfare Tactics LLC • Growth Arbor • MindPoint Group Information Dominance
• Deakin University • Johns Hopkins University • Nationwide • Washington State Patrol
• Deloitte Applied Physics Laboratory • Organon • Wells Fargo
• Fidelis Risk Advisory • L3Harris • SecureWorks • Zoom

Research and Statistics

Security+ is 24% of the total employed cybersecurity workforce in the U.S.

In Demand are Security+ certified.1

Well-Paying Security+ job roles have a median pay of $80,000 in 2023.2

Positions

Job Openings In 2023, 13% of total cybersecurity job openings request Security+
in the job requirements.3

* What does it mean to be a “high stakes” exam?.

An extraordinarily high level of rigor is employed in developing CompTIA certifications. Each question created for a CompTIA
exam undergoes multiple layers of quality assurance and thorough psychometric statistical validation, ensuring CompTIA exams
are highly representative of knowledge, skills, and abilities required of real job roles. This is why CompTIA certifications are a
requirement for many professionals working in technology. Hiring managers and candidates alike can be confident that passing a
CompTIA certification exam means competence on the job. This is also how CompTIA certifications earn ISO/ANSI accreditation,
the standard for personnel certification programs. CompTIA has awarded more than 3 million ISO/ANSI-accredited certifications in
areas such as cybersecurity, networking, cloud computing, and technical support.

* What does it mean to be a “vendor-neutral” certification?

All CompTIA certification exams are vendor neutral. This means each exam covers multiple technologies, without confining the
candidate to any one platform. Vendor neutrality is important because it ensures IT professionals can perform important job tasks
in any technology environment. IT professionals with vendor-neutral certifications can consider multiple solutions in their approach
to problem solving, making them more flexible and adaptable than those with training to just one technology.

* Prepare for your exam with Official CompTIA Content.

First and foremost, we’re an education company. CompTIA offers everything you need to get ready for your Security+
certification exam. Explore training developed by CompTIA with options that fit various learning styles and timelines.

1
Cyberseek
2
Bureau of Labor Statistics, Occupational Outlook 2023, Network & Computer Systems Administrator
3
Cyberseek

© 2023 CompTIA Properties, LLC, used under license by CompTIA Certifications, LLC. All rights reserved. All certification programs and education related
to such programs are operated exclusively by CompTIA Certifications, LLC. CompTIA is a registered trademark of CompTIA Properties, LLC in the U.S. and
internationally. Other brands and company names mentioned herein may be trademarks or service marks of CompTIA Properties, LLC or of their respective
owners. Reproduction or dissemination prohibited without written consent of CompTIA Properties, LLC. Printed in the U.S. 10875-Oct2023